Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

There are smarter ways of adding security - like letting me know via my phone and allowing me to cancel "suspicious" operations using it.

Disabling my card constantly doesn't help me at all, it's just a PITA. Imagine if any other service provider (webmail?) disabled your account frequently to "avoid fraud".



> There are smarter ways of adding security

So you assume. Have you ever investigated credit card fraud? Perhaps there are edge cases that are more difficult than you imagine.

> Imagine if any other service provider (webmail?) disabled your account frequently to "avoid fraud".

Webmail is absolutely lousy with fraud. Webmail companies explicitly disclaim all liability... so... you kinda bolstered my point there. That is, you helped add the significant texture that companies that disclaim all fraud liability can be pretty lousy at preventing fraud.

To reiterate: The entity that accepts liability should be the entity that draws the line on what risks are acceptable.

Credit card companies are pretty unique in the types and magnitude of risk that they accept and manage. They already do quite a high wire act balancing fraud prevention against user convenience. And despite some things that seem inconvenient on the surface, they are typically still the most convenient way available, by a wide margin, to conduct most payment transactions.




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: